The remote host is missing an update to gs-gplannounced via advisory USN-501-2.

A security issue affects the following Ubuntu releases:

Ubuntu 6.10Ubuntu 7.04Ubuntu 7.10

This advisory also applies to the corresponding versions ofKubuntu, Edubuntu, and Xubuntu.

Details follow:

USN-501-1 fixed vulnerabilities in Jasper. This update provides thecorresponding update for the Jasper internal to Ghostscript.

Original advisory details:

It was discovered that Jasper did not correctly handle corrupted JPEG2000 images. By tricking a user into opening a specially crafted JPG, a remote attacker could cause the application using libjasper to crash, resulting in a denial of service.

Solution:The problem can be corrected by upgrading your system to thefollowing package versions:

Ubuntu 6.10: gs-gpl 8.50-1.1ubuntu1.1

Ubuntu 7.04: gs-gpl 8.54.dfsg.1-5ubuntu0.1

Ubuntu 7.10: libgs8 8.61.dfsg.1~svn8187-0ubuntu3.2

In general, a standard system upgrade is sufficient to affect thenecessary changes.